Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/KXs_wLr_9O5XXBchLavMCU6cXvc.roa
File: KXs_wLr_9O5XXBchLavMCU6cXvc.roa (raw, json)
Hash identifier: ss0/WUBlqpzKN5icy6HrafSGEil6oO3ldaXGbTQEiuA=
Subject key identifier: 29:7B:3F:C0:BA:FF:F4:EE:57:5C:17:21:2D:AB:CC:09:4E:9C:5E:F7
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08DE
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KXs_wLr_9O5XXBchLavMCU6cXvc.roa
Signing time: Tue 29 Sep 2020 09:52:32 +0000
ROA not before: Tue 29 Sep 2020 09:52:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 175.183.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2270 (0x8de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=297B3FC0BAFFF4EE575C17212DABCC094E9C5EF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d4:a6:27:06:34:8d:28:a2:65:13:81:08:0d:
aa:14:0a:b8:32:f8:d7:7b:2c:97:68:98:36:a0:4e:
b3:f3:70:f1:6d:4f:b0:39:60:88:0d:75:04:dd:bb:
c3:7e:da:04:3b:8a:e0:9d:b5:8a:7d:cb:48:81:04:
31:c9:e2:d6:e4:80:ab:82:c1:64:a1:aa:60:43:f3:
4a:7e:91:a1:15:3b:b1:7a:3d:9f:22:e6:c9:91:4a:
d4:ea:e4:bf:22:60:8f:4e:0c:b7:f4:b5:69:3d:42:
46:83:7a:55:74:6e:ca:5f:a7:4a:72:62:56:58:7d:
f4:1a:3a:9d:0f:4d:90:a1:f9:43:0d:9e:62:7e:d8:
1e:a7:a0:04:8f:d1:5c:8b:9d:dc:52:ef:77:e8:04:
6b:c2:4c:e6:de:cb:d9:09:c1:b6:f8:3f:8d:ce:d8:
5c:a9:83:65:f5:bc:73:a3:88:93:39:f0:4b:3d:54:
20:e2:69:f4:3a:31:1a:e6:37:f3:a9:b6:aa:7f:f1:
e7:8d:25:b2:2d:93:fb:09:eb:07:7b:82:3c:73:8f:
26:fe:c4:b1:f4:28:19:9a:fb:a1:6e:ff:4e:73:5e:
d0:d5:6b:93:ca:68:25:7e:5f:43:f6:9d:39:14:c9:
0d:c7:24:bb:5e:9f:2d:5c:27:b7:b2:63:91:73:4a:
c2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:7B:3F:C0:BA:FF:F4:EE:57:5C:17:21:2D:AB:CC:09:4E:9C:5E:F7
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KXs_wLr_9O5XXBchLavMCU6cXvc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.137.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:df:60:38:18:4b:2e:a1:52:97:53:d7:19:7a:14:b4:0a:e9:
0e:4c:b7:2f:6f:c4:0f:10:81:9d:0f:8a:7b:9c:44:a0:bb:97:
46:fe:03:5a:e0:b2:da:5e:41:d2:e1:57:2c:6b:85:6e:7f:ac:
f4:ba:e4:ac:c8:dd:01:1f:36:a8:cd:c1:8e:3e:31:25:7e:1e:
4f:b7:30:ea:db:97:50:88:00:32:2a:15:ec:e9:a2:13:90:ce:
18:72:35:76:d2:3a:b9:5a:86:58:a7:47:dc:83:89:1c:b1:40:
ba:4d:22:28:85:2b:fc:02:3b:c4:f8:ed:82:37:73:1f:0f:ee:
63:cf:02:0b:b6:bf:66:23:41:c5:16:85:63:bf:cf:69:16:e9:
3d:59:e8:ff:0e:db:11:5d:8a:25:f6:7c:62:22:d2:45:a6:b7:
b6:34:89:21:6a:b5:0f:1e:29:05:e3:7c:4d:71:7d:7f:e1:76:
06:27:ba:0a:d8:27:1e:26:35:e3:cc:5e:32:ff:8a:63:27:9c:
e0:a3:96:e7:c3:0e:38:1f:13:7b:91:67:71:fe:79:d6:5f:e9:
3c:80:30:39:b0:f5:44:42:b4:48:81:eb:b1:10:66:b5:89:58:
02:97:f4:16:8f:54:d2:36:eb:85:88:a8:75:a3:27:2c:7d:39:
4c:ac:96:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org